CGI abuses Family for Nessus

ID	Name	Severity
17710	PHP < 4.4.4 Multiple Vulnerabilities	high
17694	Apache on Windows mod_alias URL Validation Canonicalization CGI Source Information Disclosure	medium
56818	CGI Generic Cross-Site Request Forgery Detection (potential)	medium
56754	Dell KACE K2000 Web Backdoor Account	high
56735	TimThumb Cache Directory 'src' Parameter Arbitrary PHP File Upload	high
56703	phpLDAPadmin orderby Parameter Arbitrary PHP Code Execution	high
56649	SonicWALL ViewPoint Server Default Credentials	high
56648	SonicWALL ViewPoint Server Detection	info
56620	WordPress < 3.1.4 / 3.2-RC3 Multiple Blind SQL Injection Vulnerabilities	medium
56564	MODx < 2.0.3-pl class_key Parameter Local File Inclusion	medium
56512	MyBB 1.6.4 Backdoor PHP Remote Code Execution	high
56511	ManageEngine ADSelfService Plus resetUnLock Authentication Bypass	high
56510	ManageEngine ADSelfService Plus Default Administrator Credentials	high
56509	ManageEngine ADSelfService Plus Detection	info
56485	Cisco Unified Operations Manager < 8.6 Multiple Vulnerabilities	critical
56484	Cisco Unified Operations Manager Detection	info
56245	CGI Generic XPath Injection (2nd pass)	medium
56243	CGI Generic Tests Load Estimation (quick tests, text injection)	info
56242	CGI Generic Tests Load Estimation (full tests)	info
56171	OpenAdmin Tool Detection	info
56165	HP Client Automation Satellite Web Console Detection	info
56091	Zabbix < 1.8.6 Multiple Vulnerabilities	medium
56024	HP SiteScope Default Credentials	high
56244	CGI Generic Tests Load Estimation (quick tests, HTML injection)	info
55979	Sitecore CMS < 6.4.1 rev.110720 'url' Parameter URI Redirection	medium
55978	Sitecore CMS / Experience Platform (XP) Web Detection	info
55969	PHP 5.3.7 crypt() MD5 Incorrect Return Value	high
55925	PHP 5.3 < 5.3.7 Multiple Vulnerabilities	critical
55931	Oracle GlassFish Server Administration Console GET Request Authentication Bypass	critical
55800	Microsoft Remote Desktop Web Access Detection	info
55720	Computer Associates ARCserve D2D homepageServlet Servlet Information Disclosure	critical
55719	Computer Associates ARCserve D2D Detection	info
55669	AlphaRegistration Component for Joomla! 'email' Parameter SQLi	medium
55668	Oracle Secure Backup Administration Server login.php uname Parameter Arbitrary Command Injection	critical
55640	SQL Dump Files Disclosed via Web Server	medium
55629	Symantec Web Gateway forget.php Blind SQL Injection (SYM11-008)	high
55628	Symantec Web Gateway login.php Blind SQL Injection (SYM11-001)	high
55627	Symantec Web Gateway Detection	info
55623	AllVideos Reloaded! Plugin for Joomla! 'divid' Parameter SQLi	high
55513	Adobe ColdFusion Remote Development Services Enabled Without Authentication	medium
55512	Adobe ColdFusion Remote Development Services	info
55509	RSA Self-Service Console Detection	info
55508	RSA Security Console Detection	info
55507	RSA Operations Console Detection	info
55456	Trend Micro Data Loss Prevention Virtual Appliance Encoded Traversal Arbitrary File Access	medium
55455	Trend Micro Data Loss Prevention Virtual Appliance Web Console Detection	info
55449	ManageEngine SupportCenter Plus FileDownload.jsp path Parameter Traversal Arbitrary File Access	medium
55448	ManageEngine SupportCenter Plus Default Administrator Credentials	high
55447	ManageEngine SupportCenter Plus Detection	info
55446	ManageEngine ServiceDesk Plus FileDownload.jsp FILENAME Parameter Traversal Arbitrary File Access	medium

Detections

Analytics

CGI abuses Family for Nessus

high

medium

medium

high

high

high

high

info

medium

medium

high

high

high

info

critical

info

medium

info

info

info

info

medium

high

info

medium

info

high

critical

critical

info

critical

info

medium

critical

medium

high

high

info

high

medium

info

info

info

info

medium

info

medium

high

info

medium